Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDF1892066-0E74-11DE-92DE-000BCDC1757A
HistoryJul 25, 2008 - 12:00 a.m.

apache -- Cross-site scripting vulnerability

2008-07-2500:00:00
vuxml.freebsd.org
10

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.072 Low

EPSS

Percentile

94.0%

JSON

CVE Mitre reports:

Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the
mod_proxy_ftp module in Apache 2.0.63 and earlier, and mod_proxy_ftp.c
in the mod_proxy_ftp module in Apache 2.2.9 and earlier 2.2 versions,
allows remote attackers to inject arbitrary web script or HTML via a
wildcard in the last directory component in the pathname in an FTP
URI.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchapache<ย 2.2.9_2UNKNOWN

Related

httpd 2
checkpoint_advisories 3
veracode 1
ubuntucve 1
seebug 2
cve 1
debiancve 1
openvas 40
securityvulns 4
nessus 20
nvd 1
cert 1
cvelist 1
prion 1
redhat 2
packetstorm 1
oraclelinux 1
centos 1
ubuntu 1
altlinux 3
kaspersky 1
httpd
httpd
Apache Httpd < 2.0.64 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
Apache Httpd < 2.2.10 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting (CVE-2008-2939)
2009-09-30 00:00:00
Update Protection against Apache mod_proxy_ftp XSS Vulnerability
2008-09-19 00:00:00
Update protection against Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross Site Scripting
2008-09-19 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:29:44
ubuntucve
ubuntucve
CVE-2008-2939
2008-08-06 00:00:00
seebug
seebug
Apache mod_proxy_ftpๆจกๅ—้€š้…็ฌฆๅญ—็ฌฆ่ทจ็ซ™่„šๆœฌๆผๆดž
2008-08-08 00:00:00
IBM HTTP Server mod_proxy_ftp ่ทจ็ซ™่„šๆœฌๆผๆดž
2009-02-16 00:00:00
cve
cve
CVE-2008-2939
2008-08-06 18:41:00
debiancve
debiancve
CVE-2008-2939
2008-08-06 18:41:00
openvas
openvas
Apache HTTP Server 'mod_proxy_ftp' Wildcard Characters XSS Vulnerability
2008-08-22 00:00:00
SLES9: Security update for Apache 2
2009-10-10 00:00:00
FreeBSD Ports: apache
2009-03-13 00:00:00
securityvulns
securityvulns
Apache mod_proxy_ftp crossite scripting
2008-08-07 00:00:00
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting
2008-08-07 00:00:00
[ MDVSA-2009:124 ] apache
2009-06-01 00:00:00
nessus
nessus
Apache mod_proxy_ftp Directory Component Wildcard Character Globbing XSS
2008-10-16 00:00:00
FreeBSD : apache -- XSS vulnerability (f1892066-0e74-11de-92de-000bcdc1757a)
2009-03-12 00:00:00
SuSE9 Security Update : Apache 2 (YOU Patch Number 12258)
2009-09-24 00:00:00
nvd
nvd
CVE-2008-2939
2008-08-06 18:41:00
cert
cert
Apache mod_proxy_ftp XSS vulnerability
2008-08-08 00:00:00
cvelist
cvelist
CVE-2008-2939
2008-08-06 18:00:00
prion
prion
Cross site scripting
2008-08-06 18:41:00
redhat
redhat
(RHSA-2008:0967) Moderate: httpd security and bug fix update
2008-11-11 00:00:00
(RHSA-2008:0966) Moderate: Red Hat Application Stack v2.2 security and enhancement update
2008-12-04 00:00:00
packetstorm
packetstorm
ProtonMail.ch Header Injection / CSRF
2014-05-30 00:00:00
oraclelinux
oraclelinux
httpd security and bug fix update
2008-11-11 00:00:00
centos
centos
httpd, mod_ssl security update
2008-11-11 20:45:50
ubuntu
ubuntu
Apache vulnerabilities
2009-03-10 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.072 Low

EPSS

Percentile

94.0%

JSON
Related for F1892066-0E74-11DE-92DE-000BCDC1757A
httpd2checkpoint_advisories3veracode1ubuntucve1seebug2cve1debiancve1openvas40securityvulns4nessus20nvd1cert1cvelist1prion1redhat2packetstorm1oraclelinux1centos1ubuntu1altlinux3kaspersky1